If this is your first visit, be sure to
check out the FAQ by clicking the
link above. You may have to register
before you can post: click the register link above to proceed. To start viewing messages,
select the forum that you want to visit from the selection below.

Large Network Anti-Virus Question

I was wondering what methods you guys use for anti-virus protection on your larger networks. Do you have anti-virus servers scanning all the files that pass through the network? Does your firewall scan it for you? Client side only? Both?

* AV brand #1 on file servers
* AV brand #1 on desktops
* AV brand #2 on email servers. AV on email servers use engines from 3 diff vendors
* Inbound email from Internet is scanned for SPAM and viruses/malware by anti-SPAM server prior to being delivered to email servers
* Both AVs are managed via centralized console for policy management, signature, and program updates.
* Desktops/laptops can also get signature updates from Internet if not able to contact central management server
* We dont do AV scanning at the firewall although it does have some attack detection and blocking features

We also use Symantec Corp 10. for AV which is a centralized AV Client/server/Admin setup. Works quite well. Not really had much problems. The centralized mgmt is a good feature. We also use Blink from eEye for for desktop ip, malware and zero day.

We use Watchguard firewalls and most users are allow only job-specific ip access to the interweb..keeps our risk to a minimum.

We don't use IE or Outlook. We're strictly a FF and TB shop except for a couple of accounting users who need IE for bank sites.

I used to be With IT. But then they changed what IT was. Now what I'm with isn't IT, and what's IT seems scary and weird." - Abe Simpson

We also use Symantec Corp 10.0 and no problems to date. I agree with Zigar about Symantec's centralized management. We have 1 (out of 2 servers) dedicated to being the AV server. Everything is pushed from there (clients installs, updates, etc.) The only thing users can do on their own, is localized scanning of their own machines.
All clients have real-time scanning locally, the server does as well.

The object of war is not to die for your country but to make the other bastard die for his - George Patton